$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2655F36C9BFB11EF9D2DEE6FC4F9AE02.roa File: 2655F36C9BFB11EF9D2DEE6FC4F9AE02.roa (raw, json) Hash identifier: Z5LFRiC2bvBy7BdDW/Pjv0yaZIPrS0av1sqKW+88qw8= Subject key identifier: BB:93:C6:0B:C4:3F:91:38:B0:1C:51:1E:2F:90:F9:89:F5:B9:53:B8 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E16 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2655F36C9BFB11EF9D2DEE6FC4F9AE02.roa Signing time: Thu 08 May 2025 15:55:17 +0000 ROA not before: Thu 08 May 2025 15:55:17 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153260 IP address blocks: 160.187.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7702 (0x1e16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:55:17 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd3e4-5629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:56:8c:82:1b:46:b2:f7:9b:7f:c9:88:70:de: fe:82:d6:60:91:e9:36:6e:4b:6d:9e:36:5b:ef:f8: 23:d6:1d:7b:37:de:b7:c2:a0:0d:7d:3d:b4:f5:c4: 5b:f0:43:d7:c9:2b:05:cf:13:1e:8a:52:27:bc:2d: 85:54:ab:e0:99:f6:60:9b:4d:9e:ed:4f:f1:a2:d1: 5e:7e:19:2f:ee:fd:d4:70:a2:c4:ec:39:af:c3:d9: 0d:aa:78:db:a8:a8:ac:c5:52:dc:23:82:95:97:f4: 37:cf:05:88:cd:e8:64:6f:9c:67:02:90:79:75:5b: 22:56:f6:d8:19:12:96:a6:08:f1:73:f1:1b:62:b7: b1:58:6c:45:47:43:bd:70:33:f5:ad:2b:38:86:76: 2c:96:97:43:64:31:b2:ea:50:68:dc:bc:14:20:6d: 18:d1:5e:12:36:5b:90:81:d1:5b:1f:83:33:7d:ba: ba:47:d8:a0:38:a6:26:28:66:72:bb:10:b3:ba:ec: 0c:32:c6:60:b8:cc:a2:6e:1a:7c:ed:7e:b2:a6:9b: 02:3a:4b:c1:7b:9a:c8:f2:b2:2a:fe:e5:15:c5:8e: e8:58:ff:b4:38:90:c6:45:f5:b0:6c:4f:be:cf:d9: b4:64:3c:89:f6:b0:7e:f3:45:ce:37:98:37:76:bb: e2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:93:C6:0B:C4:3F:91:38:B0:1C:51:1E:2F:90:F9:89:F5:B9:53:B8 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2655F36C9BFB11EF9D2DEE6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.236.0/23 Signature Algorithm: sha256WithRSAEncryption 07:85:1e:65:7d:e8:ae:0b:34:ea:96:d4:8a:58:62:bf:11:35: 44:0c:c0:55:5d:59:12:c7:fc:26:5a:80:0b:a1:aa:d5:38:eb: ba:ec:1a:6a:a2:af:ce:ee:ea:09:71:5d:e1:a0:a9:ee:e8:d6: ba:85:c5:5d:78:89:f0:a4:f1:84:c1:b5:5b:bb:f5:7e:9c:b7: fc:28:47:c2:2e:30:84:dc:15:e1:8f:75:5a:de:1e:3e:99:c8: ac:f8:b6:e6:24:d1:e2:f0:a9:e8:3f:93:47:c1:19:98:b6:ca: bf:fd:a6:df:ad:de:07:c3:17:07:82:df:bb:ae:53:5b:e5:91: b6:ec:55:2f:4e:11:b6:3a:c6:d0:33:32:2a:5e:05:c3:2e:44: 62:f6:50:ce:4b:ab:5e:d9:af:14:35:ca:f3:59:ab:2f:b1:48: 4f:9a:6f:51:6d:b3:9c:c3:3b:2d:2b:a9:d8:18:2c:51:39:18: ab:b4:3b:c8:f9:8c:82:4f:b0:98:c3:90:f5:35:d7:09:26:40: 1e:00:60:60:35:de:65:57:c6:fa:eb:26:02:ca:8f:dc:95:93: b0:8f:ce:3b:41:15:37:51:f1:09:97:e0:da:90:fe:b9:9e:23: 7f:5c:96:51:57:2c:6f:0c:ba:05:11:9f:76:15:c2:74:22:e3: c8:13:b7:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1NTE3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZDNlNC01NjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4laMghtGsvebf8mIcN7+gtZgkek2bkttnjZb7/gj1h17N963wqANfT209cRb 8EPXySsFzxMeilInvC2FVKvgmfZgm02e7U/xotFefhkv7v3UcKLE7Dmvw9kNqnjb qKisxVLcI4KVl/Q3zwWIzehkb5xnApB5dVsiVvbYGRKWpgjxc/EbYrexWGxFR0O9 cDP1rSs4hnYslpdDZDGy6lBo3LwUIG0Y0V4SNluQgdFbH4Mzfbq6R9igOKYmKGZy uxCzuuwMMsZguMyibhp87X6yppsCOkvBe5rI8rIq/uUVxY7oWP+0OJDGRfWwbE++ z9m0ZDyJ9rB+80XON5g3drvi8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLuTxgvE P5E4sBxRHi+Q+Yn1uVO4MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjY1NUYzNkM5 QkZCMTFFRjlEMkRFRTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgu+wwDQYJKoZIhvcNAQELBQADggEBAAeFHmV96K4LNOqW 1IpYYr8RNUQMwFVdWRLH/CZagAuhqtU467rsGmqir87u6glxXeGgqe7o1rqFxV14 ifCk8YTBtVu79X6ct/woR8IuMITcFeGPdVreHj6ZyKz4tuYk0eLwqeg/k0fBGZi2 yr/9pt+t3gfDFweC37uuU1vlkbbsVS9OEbY6xtAzMipeBcMuRGL2UM5Lq17ZrxQ1 yvNZqy+xSE+ab1Fts5zDOy0rqdgYLFE5GKu0O8j5jIJPsJjDkPU11wkmQB4AYGA1 3mVXxvrrJgLKj9yVk7CPzjtBFTdR8QmX4NqQ/rmeI39cllFXLG8MugURn3YVwnQi 48gTt6I= -----END CERTIFICATE-----Generated at Sun May 11 16:05:54 2025 by rpki-client